Article Content

Users intermittently requiring repeated authentication in RSA ClearTrustUser logged in the protected page, but sometimes will be logged out unexpectedlysecurecontrol.plugin.idle_timeout = 15 Mins, and the logout is definitely not caused by idle_timeout

Cause

The key used to decrypt the cookie may be expiring prior to the idle_timeout session being reached, thus forcing the user to reauthenticate

Resolution

By modifying ClearTrust server's default.conf file: securecontrol.aserver.keyserver.token_lifetime=60 Mins, this will increase the time before the key is no longer valid.